Does the asp.net account password write the password field?

Question

Does the asp.net account password write the password field?

I am setting up my first site using the asp authentication provider and using the asp.net built-in access control.

My question is, is the password encrypted or hashed when it is sent to the server using asp.net access control? or do i need to use https / ssl to accomplish this?

thank

+3

login asp.net

Mongoosenx Oct 21 '08 at 20:56

source share

4 answers

HTTPS, . ASP.Net HTML, , , . SSL/HTTPS, , .

+1

Jason Jackson 21 . '08 21:00

Logon control works like regular mail. There is no encryption or request-response method. You must use SSL if you want any security.

+1

Josh hinman Oct 21 '08 at 21:00

source share

All text data is sent as is on the server, regardless of the language used by the server, since this is controlled by the HTML Framework. You can create an encryption algorithm or a Javascript hash and use it before submitting the form data.

However, the safest way is to use HTTPS.

0

Toby mills Oct 21 '08 at 21:00

source share

Kon · Accepted Answer · 2008-10-21T20:57:39+0000

Navigate using HTTPS.

Per MSDN : "By default, ASP.NET access controls work in text over HTTP. If you are concerned about security, use HTTPS with SSL encryption."

Does the asp.net account password write the password field?

More articles: